search for: extip

I have a little home network with one Windows 98 PC and a pc running linux. My idea is that as soon as DSL is finally made available to my area (which I keep getting told will be real soon now) I want to route it through the linux box and up to the Windows PC, using IP masquerading, etc. At present I have samba enabled on the unix box which opens up several worthwhile conveniences to me:

Hello, I'm trying to set up port forwarding in IPTABLES and so far it's working great from the internet, but when I attempt from my internal LAN using the External IP address, it fails. EXTIF="eth0" INTIF="eth1" EXTIP="xxx.xxx.xxx.xxx" INTNET="192.168.1.0/24" INTIP="192.168.1.1" PORTFWIP="192.168.1.13" >From the internet, if I type in http://xxx.xxx.xxx.xxx:81 it works. When use a computer on my LAN and type in http://192.168.1.13:81 it works. However, when i type...

...All other services run fine. I user the iptables ruleset found in the IP-Masquerade HowTo. Below is the ruleset I follow for opening ports for external access. For some reason it won't open 389. $IPTABLES -A INPUT -i $EXTIF -m state --state NEW,ESTABLISHED,RELATED \ -p tcp -s $UNIVERSE -d $EXTIP --dport 389 -j ACCEPT Where $EXTIF = eth0 and $EXTIP = my ipaddress Does anyone know what I may be doing wrong? TIA

Hello, With all the talk about Firefly, I decided to check it out, it seems to work under wine (IAX only for some reason) so I'm thinking about using it on the road. Now, my Asterisk box is behind a firewall, so I have set the firewall to forward UDP port 4569 to my Asterisk box put I'm having problems with this. I followed the instructions on the Asterisk Firewall Rules page but it

I need to forward some ports but i don''t know how to configure Shorewall: TCP port 1720 TCP port range [30000-30010] UDP port range [5000-5016] UDP port range [5020-5023] Thanks, Mitja

...m that I wish to view from the internet. It is a wireless linksys model with an ip address of 192.168.1.15. I have it set on port 8081, 192.168.1.15:8081. I am using the IP Masquerade HowTo script. Here's the rule I added to my firewall script: EXTIF="ppp0" INTIF="eth1" EXTIP="`$IFCONFIG $EXTIF | grep inet | cut -d : -f 2 | cut -d \ -f 1`" $IPTABLES -A FORWARD -i $EXTIF -o $INTIF -p tcp --dport 8081 -m state \ --state NEW,ESTABLISHED,RELATED -j ACCEPT $IPTABLES -A PREROUTING -t nat -p tcp -d $EXTIP --dport 8081 \ -j DNAT --to 192.168.1.15:8081 Its not w...

I have the following network: External Interface External Interface ccc.ccc.ccc.ccc aaa.aaa.aaa.aaa | | --> VPN <--> Internet <--> FreeBSD Client (NATed extip: bbb.bbb.bbb.bbb) | FW-1 Protected Net ddd.ddd.ddd.ddd/24 VPN: ipsec freeswan (UDP encapsulated tunnel) ccc.ccc.ccc.ccc has port 136/UDP open for this I also have the following certs: cert.pem, key.pem crl.pem and CA.pem I am behind internal ips allocated by dhcp. I need to connect to an i...

...t recognize the answer as belonging to a known connection, so that the reverse NAT will fail (we use SNAT on outgoing packets). Any help or hints are appreciated! Thanx, Baltasar Some more information: ### Routing looks like ofc:/home/bc# ip ru sh 0: from all lookup local 5001: from <extip leased line>/29 lookup IQ 5002: from <extip DSL> lookup DSL 6001: from all fwmark 0x1 lookup IQ 6002: from all fwmark 0x2 lookup DSL 32765: from all lookup main 32766: from all lookup OVERRIDEdefault 32767: from all lookup default ofc:/home/bc# ip ro sh table IQ default via <ex...

...PT ipchains -P forward ACCEPT Here is a secure firewall script (from Linux Box A) that stops tinc working: #!/bin/bash PATH=/sbin:/bin:/usr/sbin:/usr/bin /bin/echo 1 > /proc/sys/net/ipv4/ip_forward # MASQ Timeouts ( 2 hours tcp session, 10 sec tcpfin, 60 sec udp ) ipchains -M -S 7200 10 60 extip="62.1.1.50" extint="eth1" intint="eth0" intnet="192.168.1.0/24" # Incoming ipchains firewall rules: # ----------------------------------- /sbin/ipchains -F input /sbin/ipchains -P input REJECT # local interface, local machines, going anywhere is valid /sb...

Hello. I'm moving from a very old Fedora Core 1 to CentOS 4.4, what a change!! Three year ago, I wrote some script (network related) and worked very well. Now, I can put into init.d by means of chkconfig and I restarted the system, but always hang when executing my srcipt (in my new centos 4.4). There a manual for making scripts for init.d? there is some new requirement by which it does not

...I get rid of the firewall script and set all the ipchains policies to ACCEPT. Pinging works, but I couldn't get other things to go across the Tinc VPN link. (ftp, etc.) /etc/rc.d/rc.firewall --> #!/bin/bash PATH=/sbin:/bin:/usr/sbin:/usr/bin /bin/echo 1 > /proc/sys/net/ipv4/ip_forward extip="62.49.252.50" extint="eth1" intint="eth0" intnet="192.168.1.0/24" # MASQ Timeouts ( 2 hours tcp session, 10 sec tcpfin, 60 sec udp ) ipchains -M -S 7200 10 60 # ----------------------------------- # Incoming ipchains firewall rules: # ------------------...

...DROP # 0.76s - Added a comment about the OPTIONAL WWW ruleset and a comment # where to put optional PORTFW commands # 0.75s - Added clarification that PPPoE users need to use # "ppp0" instead of "eth0" for their external interface # 0.74s - Changed the EXTIP command to work on NON-English distros # 0.73s - Added comments in the output section that DHCPd is optional # and changed the default settings to disabled # 0.72s - Changed the filter from the INTNET to the INTIP to be # stateful; moved the command VARs to the top and made...

https://bugzilla.netfilter.org/bugzilla/show_bug.cgi?id=552 ------- Additional Comments From cbettero@ciditech.it 2007-03-04 21:48 MET ------- This problem prevents AJAX web sites to be hosted on the internal web server, because many packets will be dropped instead of passing into PREROUTING chain... -- Configure bugmail: https://bugzilla.netfilter.org/bugzilla/userprefs.cgi?tab=email